Questions about this topic? Sign up to ask in the talk tab.

Difference between revisions of "Main Page/Featured Article"

From NetSec
Jump to: navigation, search
Line 1: Line 1:
<center><big>'''Alphanumeric Shellcode'''</big></center>
+
<center><big>'''Arp poisoning with scapy'''</big></center>
  
Alphanumeric [[shellcode]] is similar to [[ascii shellcode]] in that it is used to [[Filter bypass|bypass character filters]] and [[IDS Evasion|evade intrusion-detection]] during [[buffer overflow]] [[exploitation]]. This article documents alphanumeric code on multiple architectures, but primarily the 64 bit x86 architecture. Alphanumeric shellcode requires a basic understanding of [[bitwise math]], [[assembly]] and [[shellcode]].
+
Scapy is a [[Python]] ibrary found in most distribution's repositories under scapy or python-scapy and it must be ran as root for most (if not all) operations. Sniffing in scapy is fairly straight forward using the sniff() function. Packet crafting can be done by creating each header, ethernet headers (include source and destination MAC addresses) using Ether(), IP headers (which include information such as source and destination IP addresses) via the IP() function. If it is a TCP packet, the TCP() function is used, and if it is UDP, the UDP() function.
  
<center>'''''[[Alphanumeric shellcode|Learn more - Alphanumeric shellcode]]'''''</center>
+
<center>'''''[[Arp poisoning with scapy|Learn more - Arp poisoning with scapy]]'''''</center>

Revision as of 21:19, 10 July 2012

Arp poisoning with scapy

Scapy is a Python ibrary found in most distribution's repositories under scapy or python-scapy and it must be ran as root for most (if not all) operations. Sniffing in scapy is fairly straight forward using the sniff() function. Packet crafting can be done by creating each header, ethernet headers (include source and destination MAC addresses) using Ether(), IP headers (which include information such as source and destination IP addresses) via the IP() function. If it is a TCP packet, the TCP() function is used, and if it is UDP, the UDP() function.

Learn more - Arp poisoning with scapy